CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2020-5417 HIGH
Cloud Foundry CAPI <1.97.0 - Info Disclosure
CVSS 8.8
CVE-2020-24394 HIGH
Linux kernel <5.7.8 - Privilege Escalation
CVSS 7.1
CVE-2020-5385 MEDIUM
Dell Encryption < 10.8 - Incorrect Permission Assignment
CVSS 6.7
CVE-2020-0559 HIGH
Intel AC 3165 Firmware < 21.40.5.1 - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-8731 HIGH
Intel(R) Server <1.59 - Privilege Escalation
CVSS 8.8
CVE-2020-6295 HIGH
SAP Adaptive Server Enterprise 16.0 - Info Disclosure
CVSS 7.8
CVE-2020-4631 MEDIUM
IBM Spectrum Protect Plus < 10.1.6 - Incorrect Permission Assignment
CVSS 5.5
CVE-2020-13915 HIGH
Ruckuswireless Unleashed Firmware - Insufficiently Protected Creden...
CVSS 7.5
CVE-2020-9671 CRITICAL
Adobe Creative Cloud Desktop Application < 5.1 - Incorrect Permission Assignment
CVSS 9.8
CVE-2020-15697 MEDIUM
Joomla! < 3.9.19 - Incorrect Permission Assignment
CVSS 4.3
CVE-2020-11827 HIGH
GOG Galaxy < 1.2.67 - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-6267 MEDIUM
SAP Disclosure Mgmt <10.1 - Info Disclosure
CVSS 5.4
CVE-2020-5371 HIGH
Dell Emc Isilon Onefs < 8.2.2 - Incorrect Permission Assignment
CVSS 8.0
CVE-2020-15529 HIGH
GOG Galaxy - Improper Locking
CVSS 7.8
CVE-2020-15528 HIGH
GOG Galaxy - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-15397 HIGH
HylaFAX+ <7.0.2 - Code Injection
CVSS 7.8
CVE-2020-12041 CRITICAL
Baxter Sigma Spectrum Infusion System... - Incorrect Permission Assignment
CVSS 9.4
CVE-2020-10782 MEDIUM
Ansible <3.7.0 - Info Disclosure
CVSS 6.5
CVE-2020-11911 MEDIUM
Treck Tcp/ip < 6.0.1.66 - Incorrect Permission Assignment
CVSS 5.3
CVE-2020-13431 HIGH
I2P <0.9.46 - Privilege Escalation
CVSS 7.8
CVE-2020-5358 MEDIUM
Dell Encryption < 10.7.0 - Incorrect Permission Assignment
CVSS 6.7
CVE-2020-5755 HIGH
Webroot endpoint agents <v9.0.28.48 - Privilege Escalation
CVSS 7.8
CVE-2020-3961 HIGH
Vmware Horizon Client < 5.4.3 - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-11613 HIGH
Mids' Reborn Hero Designer - Uncontrolled Search Path
CVSS 7.8
CVE-2020-1170 HIGH
Microsoft Windows Defender - Incorrect Permission Assignment
CVSS 7.8
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits